default umask of 0077 too restrictive for scripts
Bug #255856 reported by
Andreas Hasenack
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Landscape Client |
Fix Released
|
Medium
|
Kevin McDermott | ||
Landscape Server |
Fix Released
|
Medium
|
Kevin McDermott |
Bug Description
For some reason (still investigating), smart's config file was mode 0600 in five installations:
drwxr-xr-x 4 root root 4096 2008-08-07 20:19 .
drwxr-xr-x 25 root root 4096 2008-08-06 20:05 ..
-rw-r--r-- 1 root root 6056528 2008-08-07 20:17 cache
drwxr-xr-x 2 root root 12288 2008-08-07 20:19 channels
-rw------- 1 root root 1722 2008-08-07 20:19 config
-rw-r--r-- 1 root root 1914 2008-08-07 20:17 config.old
drwxr-xr-x 2 root root 4096 2008-08-06 21:06 packages
This prevents regular users from using it even for just read access.
Related branches
Changed in landscape: | |
importance: | Undecided → Medium |
milestone: | none → thames-pre-6 |
status: | New → Confirmed |
Changed in landscape: | |
assignee: | nobody → kevin-mcdermott |
status: | Confirmed → In Progress |
Changed in landscape-client: | |
status: | In Progress → Fix Committed |
Changed in landscape: | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
This happened because a "smart update" command was sent to the machine via Landscape's script execution plugin. That plugin sets the umask to 0077 before running the script.
Smart moves the config file to .old and creates a new one, so this operation is affected by the current umask. That's how the config file got mode 0600 while the previous one was 0644.